Back to Job Search Results

DevSecOps Engineer

Date Posted: Apr 21, 2025

Job Id: Job #1669658

Employment Type: Contract

Location: Friendswood, Texas, United States

Share This Job Post

Job Title: DevSecOps (AWS Security) Engineer

Responsibilities:

Implement and optimize security controls for AWS cloud infrastructure.
Monitor and review application and infrastructure security posture, initiating remediation efforts with relevant teams.
Recommend new or revised security measures and countermeasures for current security challenges.
Integrate DAST and SAST tools seamlessly into CI/CD pipelines.
Collaborate with DevOps and Platform teams to ensure security considerations are embedded from the outset.
Automate security testing (e.g., vulnerability scanning, static code analysis) within the deployment pipeline.
Identify, create, and implement security standards for CI/CD pipelines and infrastructure deployment automations.
Oversee the implementation and administration of logging and monitoring services to safeguard the security and integrity of applications.
Create and maintain system documentation, architecture diagrams, and online collaborative documentation (e.g., Wiki) with high quality.
Support software engineers in following the software delivery lifecycle and secure development practices.
Assume a leadership role in knowledge transfer and skill development for team members.

Requirements:

5+ years of demonstrable experience with AWS cloud security infrastructure and tools.
Experience with three or more of the following AWS services: GuardDuty, CloudTrail, CloudWatch, Inspector, SecurityHub, TrustedAdvisor, Config, ControlTower / GuardRails.
Experience using organizational cloud governance constructs (e.g., AWS Organizations including OUs and SCPs).
Strong understanding and experience with IAM, including roles and policies.
Strong understanding and experience with cloud access control & security mechanisms (e.g., ACL, Security Groups, VPCs).
Strong knowledge of application development, systems engineering, and network engineering to develop security requirements and best practices, enterprise risk assessment methodologies.
Experience with CI/CD pipeline tooling (Artifactory/ECR, GitHub Actions).
Experience with tools such as CloudWatch, Config, Control Tower, Inspector, and Wiz.
Ability to show initiative and translate business requirements and needs into technical, secure solutions.
Excellent communication skills with the ability to communicate complex security concepts clearly and concisely.
Experience mentoring other engineers.

Apply Now

Upload Your Resume

Accepted file types are DOC, DOCX, PDF, HTML, and TXT.

Upload File from Computer

Name

Best Phone Number to Call

I acknowledge that my information will be collected, used, and shared as described in the Global Privacy Policy

Mandatory questions are indicated. All other questions are optional. I agree that any sensitive personal information I voluntarily provide in response to optional questions will be handled in accordance with the Global Privacy Policy. I acknowledge and agree to receive communications from Korn Ferry via phone, SMS and email (message frequency varies, SMS message and data rates may apply). I am not a citizen of, ordinarily resident, or physically located in Cuba, Iran, North Korea, Syria, or the Crimea, Donetsk, or Luhansk regions of Ukraine nor ordinarily resident or physically located in the Russian Federation. I understand that I can withdraw this consent at any time by contacting privacy@kornferry.com.

Yes, I would like to receive regular updates on thought leadership, industry insights and upcoming events from Korn Ferry. I understand that I may withdraw my consent at any time. Review Korn Ferry’s Privacy Policy.